All the latest UK technology news, reviews and analysis

Bug bypasses attachment-opening barrier

by Ian Lynch

24 Nov 2000

Be the first to comment

  • Tweet this

An email worm that can install itself on some computers without requiring the user to click on an attachment has started to infect networks.

Variously called Verona, I-worm.Bleba or Romeo&Juliet, the latter being one of 12 random messages the subject line bears, it exploits a reported hole in Microsoft's Outlook and Outlook Express email clients and its Internet Explorer 5.5 browser.

Further reading

The worm, discovered in Poland on 16 November, exploits a compressed help file format known as a .chm file, but a report posted to the Bugtraq security list states that users can avoid it by disabling active scripting on their browser settings.

Denis Zenkin, head of corporate communications at Kaspersky Labs, said: "This is similar in form and effect to the music worm, [except that] the user only needs to open the email for it to run."

The worm can be identified by one of its 12 subject headers. These are:

Romeo&Juliet
:)))))))
hello world
!!??!?!?
subject
ble bla, ble
I Love you :)
Sorry,,,
Hey You !
Matrix has you...
My picture
From shake-beer

Once the user views the email, the worm saves two HTML attachments to c:\windows\temp and begins the process of sending emails to all the addresses in the victim's Microsoft Outlook address book.

Do you agree?

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Security

phishing-credit-card

Google moves to calm fears of Wallet attacks

Related white papers

Related articles

Related jobs

Today's top stories

ACTA protests took place across the globe

EP president condemns ACTA treaty as citizens protest across the globe

Google logo

Security patches cost Google $410,000 in finder's fees

Apple iPhone 4S

Apple stocks pass $500 as firm's financial success continues

Poll

IT priorities for 2012

What is the most important IT priority for your company this year?

99%

0%

1%

0%

0%

Features

V3 and The INQUIRER editor Madeline Bennett

BBC and Sky News show tough love with Twitter policies

V3's Rosalie Marshall

World indulges in a Facebook facts fest as firm prepares to float

facebook-new

Top five most interesting figures from Facebook’s IPO

Khidr headshot

Intel will prove Steve Jobs wrong in the mobile market

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Accurev

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Talend

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Technology jobs

Linux Systems Administrator- Red Hat- Cambridge - £30-40k

Linux Systems Administrator- Red Hat- Cambridge - £30...

Head of Strategic Development - eCommerce - £80-95k+Bens

HEAD OF STRATEGIC DEVELOPMENT - ECOMMERCE - LONDON...

Business Analyst / Lead Business Analyst

My client seeks an experienced Business Analyst to provide...

Lead Business Architect / Business Architect

My client a large forward thinking organisation is looking...

To send to more than one email address, simply separate each address with a comma.